1 results (0.044 seconds)
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2013-1393
https://notcve.org/view.php?id=CVE-2013-1393
20 Jun 2013 — Cross-site scripting (XSS) vulnerability in the CurvyCorners module 6.x-1.x and 7.x-1.x for Drupal allows remote authenticated users with the "administer curvycorners" permission to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidades de secuencias de comandos entre sitios múltiples (XSS) en el módulo CurviCorners v6.x-1.x y v7.x-1.x para Drupal que permite a usuarios autenticados de forma remota con el permiso "administer curvycorners" inyectar secuencias de comandos web o HTML a t... • http://osvdb.org/89571 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •